<a href="https://colab.research.google.com/github/lav7979/Python-basics/blob/main/Restful_API_%26_Flask.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>


1. What is a RESTful API?

     A RESTful API (Representational State Transfer API) is a web service that follows the principles of REST architecture. It uses HTTP requests to perform CRUD (Create, Read, Update, Delete) operations on resources, which are represented by URLs. RESTful APIs are stateless, cacheable, and use standard HTTP methods like GET, POST, PUT, DELETE.

Example:

     GET /users retrieves a list of users.

     POST /users creates a new user.
     


2. Explain the concept of API specification?


     An API specification is a formal document that defines how an API behaves. It describes endpoints, request/response formats, HTTP methods, parameters, authentication, and error codes. API specifications help developers understand and implement the API consistently.

Example:

      OpenAPI Specification (formerly Swagger) is widely used to describe RESTful APIs.



3. What is Flask, and why is it popular for building APIs?


     Flask is a lightweight Python web framework used to build web applications and APIs. It is popular because it is simple, flexible, and easy to learn. Flask allows developers to quickly create RESTful APIs with minimal setup and has a large ecosystem of extensions.



4. What is routing in Flask?


     Routing in Flask means mapping a URL to a function that will handle the request. This allows you to define different endpoints in your application.

Example:

     @app.route('/hello')
     def hello():
      return "Hello, World!"


5. How do you create a simple Flask application?


     A basic Flask app is created by importing Flask, defining routes with decorators, and running the app.

Example:

       from flask import Flask
       app = Flask(__name__)

        @app.route('/')
        def home():

        return "Welcome to Flask!"

      if __name__ == '__main__':
      
6. What are HTTP methods used in RESTful APIs?


     The main HTTP methods are:

     GET: Retrieve data

     POST: Create new resource

     PUT: Update existing resource

     DELETE: Remove resource

     PATCH: Partial update of a resource



7. What is the purpose of the @app.route() decorator in Flask?


      The @app.route() decorator tells Flask which URL should trigger the associated function. It defines the route path and optionally the allowed HTTP methods.

    

8. What is the difference between GET and POST HTTP methods?


     GET retrieves data and should not change the server state. Parameters are sent via URL query strings.

     POST submits data to the server, often causing changes (like creating a resource). Data is sent in the request body.


9. How do you handle errors in Flask APIs?


     Errors can be handled by using Flask’s @app.errorhandler() decorator or by returning appropriate HTTP status codes and messages in your endpoint functions.

Example:

        @app.errorhandler(404)
        def not_found(error):
            return {"error": "Resource not found"}, 404


10. How do you connect Flask to a SQL database?


     You can connect Flask to a SQL database using libraries like Flask-SQLAlchemy or directly via database drivers (e.g., sqlite3, psycopg2 for PostgreSQL). Flask-SQLAlchemy is the most common, as it provides an ORM.


11. What is the role of Flask-SQLAlchemy?


     Flask-SQLAlchemy integrates SQLAlchemy with Flask, making database operations simpler. It allows you to define database models as Python classes and abstracts SQL queries.


12. What are Flask blueprints, and how are they useful?


      Flask Blueprints help organize a Flask app into modular components by grouping routes, templates, and static files. This is especially useful for larger applications.



13. What is the purpose of Flask's request object?


     The request object contains all the information about the incoming HTTP request, such as headers, form data, JSON payload, query parameters, and more.



14. How do you create a RESTful API endpoint using Flask?


     By defining a route and specifying HTTP methods, you can create RESTful endpoints.

Example:

        @app.route('/items', methods=['GET', 'POST'])
        def items():

              if request.method == 'GET':
                  return {"items": ["item1", "item2"]
            
                  elif request.method == 'POST':
                   data = request.json
                   process and add new item
                  return {"message": "Item added"}, 201



15. What is the purpose of Flask's jsonify() function?


     jsonify() converts Python dictionaries or lists into JSON format and sets the correct response headers (Content-Type: application/json), which is essential for APIs.



16. Explain Flask’s url_for() function?


     url_for() generates a URL to a specific function by its name, which helps avoid hardcoding URLs and makes the app more maintainable.

Example:

       url_for('home')  # Returns '/'



17. How does Flask handle static files (CSS, JavaScript, etc.)?


     Flask serves static files from the static folder by default. You can link static assets in templates using url_for('static', filename='style.css').



18. What is an API specification, and how does it help in building a Flask API?


     An API specification formalizes the API contract, making it easier to design, develop, and test the API. For Flask APIs, specs like OpenAPI can be used to generate documentation and client libraries.


19. What are HTTP status codes, and why are they important in a Flask API?


      HTTP status codes inform the client about the result of their request (e.g., 200 OK, 404 Not Found, 500 Internal Server Error). Proper status codes make your API predictable and easier to consume.



20. How do you handle POST requests in Flask?


     In Flask, POST requests are handled by defining a route that accepts the POST method using the methods argument in the @app.route() decorator. The data sent in a POST request is usually accessed from the request.form or request.json object, depending on the content type.

Example:


     from flask import Flask, request, jsonify

     app = Flask(__name__)

     @app.route('/submit', methods=['POST'])
     def submit():

           data = request.json
          name = data.get('name')
          return jsonify({"message": f"Hello, {name}!"}), 201

     Explanation:

       This endpoint accepts JSON data via POST and returns a greeting. Handling POST requests is essential for creating new resources in RESTful APIs.


21. How would you secure a Flask API?


     Securing a Flask API involves implementing various security measures to prevent unauthorized access, data leaks, and attacks. Key strategies include:

     Authentication & Authorization: Use tokens (e.g., JWT) or OAuth2 to verify users.

     HTTPS: Ensure data is transmitted securely.

     Input validation & sanitization: Prevent SQL Injection or XSS attacks.

     Rate limiting: Avoid abuse and DoS attacks.


     CORS (Cross-Origin Resource Sharing): Control which domains can access your API.

     Use Flask extensions: Like Flask-JWT-Extended, Flask-Limiter, or Flask-CORS.

Example:

     from flask_jwt_extended import JWTManager, jwt_required

     app.config["JWT_SECRET_KEY"] = "super-secret"
     jwt = JWTManager(app)

     @app.route('/protected', methods=['GET'])
     @jwt_required()
     def protected():

             return {"message": "You are authenticated"}


22. What is the significance of the Flask-RESTful extension?


     Flask-RESTful is an extension for Flask that simplifies the creation of RESTful APIs. It provides a structured way to define resources and map them to endpoints using Python classes, making the code more organized and readable.

 Key Features:


        Cleaner code with resource classes

        Built-in request parsing

        Easier management of HTTP methods (GET, POST, PUT, DELETE)

Example:

     from flask_restful import Api, Resource

     api = Api(app)

      class Hello(Resource):
         def get(self):
              return {"message": "Hello, Flask-RESTful!"}

            api.add_resource(Hello, '/hello')


23. What is the role of Flask’s session object?


     Flask’s session object is used to store data that persists across multiple requests from the same client (typically using cookies). It allows the application to track user data between requests, such as login status or shopping cart items.

 How it works:

     Flask stores the session data client-side in a securely signed cookie.

     You can use it like a dictionary to store user-specific information.

Example:

     from flask import session

      @app.route('/login', methods=['POST'])
      def login():

               session['username'] = request.form['username']
               return f"Logged in as {session['username']}"
 Security Tip:

       Set a secret key for signing session cookies:

     app.secret_key = 'your_secret_key'




     PRACTICAL


 1. How do you create a basic Flask application?


     from flask import Flask

      app = Flask(__name__)

        @app.route('/')
        def home():
           return "Hello, Flask!"

      if __name__ == '__main__':
         app.run(debug=True)


Output (on visiting /):

                      Hello, Flask!


2. How do you serve static files like images or CSS in Flask?


     Create a folder called static/ in your project and place files inside it.

Project Structure:


              project/
              │
              ├── static/
              │   └── style.css
              └── app.py

In HTML Template:

      <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">


Output:

       CSS is loaded and applied to the webpage.


3. How do you define different routes with different HTTP methods in Flask?


     from flask import Flask, request

     app = Flask(__name__)

      @app.route('/submit', methods=['GET', 'POST'])
      def submit():
           if request.method == 'POST':
              return "Form submitted!"
       return "Send a POST request to submit."


# Output for GET:

      "Send a POST request to submit."

# Output for POST:

               "Form submitted!"


4. How do you render HTML templates in Flask?


     Folder structure:


                    project/
                    ├── templates/
                    │   └── index.html
                    └── app.py
                           index.html:

                           <!doctype html>
                            <html><body><h1>Hello, {{ name }}!</h1></body></html>
                             app.py:


     from flask import Flask, render_template

     app = Flask(__name__)

        @app.route('/')
        def home():

               return render_template('index.html', name="Flask")

# Output:

         Renders "Hello, Flask!" in browser


5. How can you generate URLs for routes in Flask using url_for?


     from flask import Flask, url_for

     app = Flask(__name__)

     @app.route('/about')
     def about():
     return "About page"

      @app.route('/')
      def index():
     return f"About URL: {url_for('about')}"

# Output:

       "About URL: /about"


6. How do you handle forms in Flask?


     from flask import Flask, request, render_template_string

     app = Flask(__name__)

     form_html = '''
      <form method="POST">
     Name: <input type="text" name="name">
      <input type="submit">
      </form>
     '''

      @app.route('/', methods=['GET', 'POST'])
     def form():
        if request.method == 'POST':
            name = request.form['name']
                return f"Hello, {name}!"
                return render_template_string(form_html)


# Output:

         Enter a name, click submit -> displays "Hello, <name>!"


7. How can you validate form data in Flask?


          @app.route('/validate', methods=['POST'])
          def validate():
              name = request.form.get('name', '').strip()
              if not name:
                  return "Name is required", 400
              return f"Valid name: {name}"

# Output:

          # If empty: "Name is required"
          # If filled: "Valid name: John"


8. How do you manage sessions in Flask?


            from flask import Flask, session

            app = Flask(__name__)
            app.secret_key = 'secret'

            @app.route('/login')
            def login():
                session['user'] = 'admin'
                return "Logged in!"

        @app.route('/profile')
        def profile():
            user = session.get('user')
            return f"Hello, {user}"

# Output:

          # Visit /login → "Logged in!"
          # Then /profile → "Hello, admin"


9. How do you redirect to a different route in Flask?


          from flask import Flask, redirect, url_for

          app = Flask(__name__)

          @app.route('/')
          def home():
              return redirect(url_for('welcome'))

        @app.route('/welcome')
        def welcome():
            return "Welcome page"

# Output:

        Visiting "/" redirects to "/welcome"


10. How do you handle errors in Flask (e.g., 404)?


      @app.errorhandler(404)
      def page_not_found(e):
          return "Page not found", 404

# Output:

         Visiting a non-existent route returns "Page not found"


11. How do you structure a Flask app using Blueprints?


 project structure:

                  project/
                  ├── app.py
                  └── blog/
                      ├── __init__.py
                      └── routes.py
                  blog/routes.py


      from flask import Blueprint

      blog_bp = Blueprint('blog', __name__)

        @blog_bp.route('/blog')
        def blog_home():
            return "Blog Home"

          app.py

          from flask import Flask
          from blog.routes import blog_bp

        app = Flask(__name__)
        app.register_blueprint(blog_bp)

# Output:

      Visiting /blog → "Blog Home"


12. How do you define a custom Jinja filter in Flask?

      @app.template_filter('reverse')
      def reverse_filter(s):
          return s[::-1]

        @app.route('/')
        def index():
            return render_template_string("{{ 'hello' | reverse }}")

# Output;

           "olleh"

13. How can you redirect with query parameters in Flask?

      from flask import redirect, url_for

        @app.route('/search')
        def search():
            return redirect(url_for('results', q='flask'))

        @app.route('/results')
        def results():
            return f"Search results for: {request.args.get('q')}"

# Output:

       "Search results for: flask"

14. How do you return JSON responses in Flask?

          from flask import jsonify

          @app.route('/api')
          def api():
              return jsonify({"status": "success", "data": [1, 2, 3]})

# Output:

          JSON {"status": "success", "data": [1, 2, 3]}


15. How do you capture URL parameters in Flask?

        @app.route('/user/<username>')
        def user_profile(username):
            return f"Welcome, {username}!"

     # Visiting /user/alex →

 Output:

     "Welcome, alex!"    


